← Back to Skills Marketplace
MH healthcheck
by
mohdalhashemi98-hue
· GitHub ↗
· v1.0.0
459
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install mh-healthcheck
Description
Host security hardening and risk-tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/update hardening, r...
Usage Guidance
This skill appears to be what it says: a checklist and set of read-only checks for host hardening and an OpenClaw audit. Before installing/using it: 1) Note the skill comes from an unknown source/homepage — prefer skills with a verifiable author or repo. 2) Expect the agent to run system commands (uname, ss/lsof, firewall tools, tmutil, etc.) and the 'openclaw' CLI if present; confirm you want it to read that information. 3) The skill will ask for explicit approval before any state-changing actions (and warns that OpenClaw --fix affects OpenClaw settings only, not host firewall/SSH), so decline fixes until you have backups and a rollback plan. 4) Ensure the 'openclaw' CLI and any referenced tools are present in your environment, or the checks will be partial. 5) If you have sensitive data or strict policy, run the checks in a test environment first and verify the skill's outputs before applying changes. If you need higher assurance, ask the publisher for source code or a homepage before proceeding.
Capability Analysis
Type: OpenClaw Skill
Name: mh-healthcheck
Version: 1.0.0
The OpenClaw AgentSkills bundle 'mh-healthcheck' is designed for host security hardening and auditing. Its instructions explicitly prioritize user approval for any state-changing actions, detail read-only diagnostic commands (e.g., `uname -a`, `ss -ltnup`, `ufw status`), and outline a transparent workflow. While it utilizes shell execution and can schedule tasks via `openclaw cron`, these actions are strictly controlled, require explicit user consent, and are integral to its stated purpose of security assessment. There is no evidence of malicious intent, data exfiltration, unauthorized persistence, or prompt injection attempts designed to subvert the agent's security protocols; rather, the instructions reinforce secure behavior.
Capability Assessment
Purpose & Capability
The name/description describe host security hardening and risk posture checks and the SKILL.md contains exactly those checks (OS, listening ports, firewall status, backups, OpenClaw audit/status). There are no unrelated credential or install requests. One minor note: the skill assumes the presence of several system utilities and the 'openclaw' CLI but does not declare required binaries or how the CLI is provided.
Instruction Scope
Instructions tell the agent to run a set of read-only system commands (uname, sw_vers, /etc/os-release, ss/lsof, ufw/firewall-cmd/nft, tmutil, openclaw audit/update) and to ask explicit approval before making changes. This scope is appropriate for a host hardening checklist. The SKILL.md does instruct the agent to infer environment context automatically and to run OS-appropriate commands by default if the user permits; that behavior is expected but grants the agent broad read access to system state (appropriate for the purpose but worth user awareness). The skill does not explicitly list the binaries it will call, which reduces transparency.
Install Mechanism
No install spec and no code files — instruction-only. That minimizes disk-write/install risk. The lack of an install step is consistent with an advice/checklist-style skill.
Credentials
The skill requests no environment variables or credentials. It does require (implicitly) access to system command output and the OpenClaw CLI, which is proportional to its stated purpose. It explicitly requires user approval before any state-changing OpenClaw actions (e.g., --fix).
Persistence & Privilege
always:false and no install indicates no forced permanence. The skill can be invoked autonomously (platform default) but does not request elevated platform privileges or to persist config. The SKILL.md emphasizes explicit approval before state changes, which limits privilege escalation risk.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install mh-healthcheck - After installation, invoke the skill by name or use
/mh-healthcheck - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Priority upload batch
Metadata
Frequently Asked Questions
What is MH healthcheck?
Host security hardening and risk-tolerance configuration for OpenClaw deployments. Use when a user asks for security audits, firewall/SSH/update hardening, r... It is an AI Agent Skill for Claude Code / OpenClaw, with 459 downloads so far.
How do I install MH healthcheck?
Run "/install mh-healthcheck" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is MH healthcheck free?
Yes, MH healthcheck is completely free (open-source). You can download, install and use it at no cost.
Which platforms does MH healthcheck support?
MH healthcheck is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created MH healthcheck?
It is built and maintained by mohdalhashemi98-hue (@mohdalhashemi98-hue); the current version is v1.0.0.
More Skills